migrate to identity for authentication

2026-03-21 15:38:05 -05:00
parent ef4f0c0159
commit 3dd0460209
10 changed files with 397 additions and 29 deletions
--- a/api/src/Controllers/AuthController.cs
+++ b/api/src/Controllers/AuthController.cs
@@ -1,6 +1,7 @@

 using Microsoft.AspNetCore.Mvc;
 using Microsoft.AspNetCore.Authorization;
+using Microsoft.AspNetCore.Identity;

 using agologumApi.Models;
 using agologumApi.Services;
@@ -9,11 +10,17 @@ using agologumApi.Services;
 [Route("api/[controller]")]
 public class AuthController : ControllerBase {

+    // identity things
+    private readonly UserManager<User> userManager_;
+    private readonly SignInManager<User> signInManager_;
+
    private readonly UserService users_;
    private readonly JwtService jwt_;

-    public AuthController(UserService users, JwtService jwt)
-    {
+    public AuthController(UserManager<User> userManager, SignInManager<User> signInManager, UserService users, JwtService jwt) {
+
+        userManager_ = userManager;
+        signInManager_ = signInManager;
        users_ = users;
        jwt_ = jwt;
    }
@@ -21,10 +28,9 @@ public class AuthController : ControllerBase {
    [HttpPost("register")]
    public async Task<ActionResult> Register(RegisterDto dto) {
        var user = new User {
-            Name = dto.Username,
+            UserName = dto.UserName,
            Email = dto.Email,
            PasswordHash = BCrypt.Net.BCrypt.HashPassword(dto.Password), // TODO: secondary hashing stage in client
-            Role = "user",
            CreatedAt = DateTime.UtcNow // yeah why not utc
        };

@@ -39,11 +45,13 @@ public class AuthController : ControllerBase {
    [HttpPost("login")]
    public async Task<ActionResult> Login(LoginDto dto)
    {
-        var user = await users_.Get(dto.Username);
+        var user = await users_.Get(dto.UserName);

-        if (user == null || !BCrypt.Net.BCrypt.Verify(dto.Password, user.PasswordHash)) {
-            return Unauthorized();
-        }
+        if (user == null) return Unauthorized();
+
+        var result = await signInManager_.CheckPasswordSignInAsync(user, dto.Password, false);
+
+        if(!result.Succeeded) return Unauthorized();

        var token = jwt_.GenerateJwt(user);